General
-
Target
3005ae9726d7171430eb98138aacb0c9_JaffaCakes118
-
Size
278KB
-
Sample
240330-bj9beaed64
-
MD5
3005ae9726d7171430eb98138aacb0c9
-
SHA1
442e27573868786276262bf9f76ee778b0f45fe4
-
SHA256
965e81ee79750b92e427d5b1b03169a4f6e62842b869142777e838804827b651
-
SHA512
cdc4e8ea6ff8fe9cea4a05608b95c619288994ea597987826df0491a6afd22382890dd4baedcb55691c7bf667e49039014c442cac969d0ee8880c65dc7ae48fd
-
SSDEEP
6144:AtKbreYWP1wkNIA84X3hBt7ejZlfbVu0Vx98aCaodlHR7vE:CKbrjWNYLGxrKZlzlH8njHR7
Static task
static1
Behavioral task
behavioral1
Sample
3005ae9726d7171430eb98138aacb0c9_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Extracted
redline
sewPalp
185.215.113.29:24645
-
auth_value
41d3df6d093b1e36993abf16af0d6f2d
Targets
-
-
Target
3005ae9726d7171430eb98138aacb0c9_JaffaCakes118
-
Size
278KB
-
MD5
3005ae9726d7171430eb98138aacb0c9
-
SHA1
442e27573868786276262bf9f76ee778b0f45fe4
-
SHA256
965e81ee79750b92e427d5b1b03169a4f6e62842b869142777e838804827b651
-
SHA512
cdc4e8ea6ff8fe9cea4a05608b95c619288994ea597987826df0491a6afd22382890dd4baedcb55691c7bf667e49039014c442cac969d0ee8880c65dc7ae48fd
-
SSDEEP
6144:AtKbreYWP1wkNIA84X3hBt7ejZlfbVu0Vx98aCaodlHR7vE:CKbrjWNYLGxrKZlzlH8njHR7
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine payload
-
SectopRAT payload
-